United States of America: National Institute of Standards and Technology released updated Security and Privacy Controls for Information Systems and Organisations (SP 800-53 5.2.0)

National Institute of Standards and Technology released updated Security and Privacy Controls for Information Systems and Organisations (SP 800-53 5.2.0)

On 27 August 2025, the National Institute of Standards and Technology (NIST) issued a patch release of its Security and Privacy Controls for Information Systems and Organisations (SP 800-53 5.2.0). The Controls group together a catalogue of tools fo…

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

cross-cutting

Implementation Level

national

Government Branch

executive

Government Body

other regulatory body

Complete timeline of this policy change

Hide details

2021-08-03

in consultation

On 3 August 2021, the consultation on the Assessing Security and Privacy Controls in Information Sy…

2021-10-01

processing consultation

On 1 October 2021, the consultation on the Assessing Security and Privacy Controls in Information S…

2023-11-07

adopted

On 7 November 2023, the National Institute of Standards and Technology (NIST) issued a patch releas…

2025-08-27

adopted

On 27 August 2025, the National Institute of Standards and Technology (NIST) issued a patch release…

Description

National Institute of Standards and Technology released updated Security and Privacy Controls for Information Systems and Organisations (SP 800-53 5.2.0)

Scope

Complete timeline of this policy change